CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
The Hacker News
Hardcoded Credential Vulnerability Found in SolarWinds Web Help Desk
Vulnerability / Network Security SolarWinds has issued patches to address a new security flaw in its Web Help Desk (WHD) software that could allow remote unauthenticated users to gain unauthorized acc ... Read more
-
BleepingComputer
Microsoft confirms August updates break Linux boot in dual-boot systems
Microsoft has confirmed the August 2024 Windows security updates are causing Linux booting issues on dual-boot systems with Secure Boot enabled. The issue is caused by a Secure Boot Advanced Targeting ... Read more
-
The Hacker News
Chinese Hackers Exploit Zero-Day Cisco Switch Flaw to Gain System Control
Network Security / Zero-Day Details have emerged about a China-nexus threat group's exploitation of a recently disclosed, now-patched security flaw in Cisco switches as a zero-day to seize control of ... Read more
-
Darktrace
Race Against Time: Detecting JetBrains’ TeamCity Exploitation Activity with Darktrace
Darktrace observed the rapid exploitation of a critical vulnerability in JetBrains TeamCity (CVE-2024-27198) shortly following its public disclosure. Learn how the need for speedy detection serves to ... Read more
-
TheCyberThrone
CISA adds multiple vulnerabilities to its KEV catalog
The U.S. CISA has added 4 vulnerabilities to it’d Known Exploited Vulnerabilities Catalog (KEV) belongs to Dahua, Microsoft, and Linux products based on the mass exploitationCVE-2022-0185Linux Kernel ... Read more
-
security.nl
SolarWinds-software kwetsbaar door aanwezigheid hardcoded credential
De helpdesksoftware van SolarWinds is kwetsbaar door de aanwezigheid van een hardcoded credential, waardoor een ongeauthenticeerde aanvaller toegang tot het systeem kan krijgen en data kan aanpassen. ... Read more
-
BleepingComputer
SolarWinds fixes hardcoded credentials flaw in Web Help Desk
SolarWinds has released a hotfix for a critical Web Help Desk vulnerability that allows attackers to log into unpatched systems using hardcoded credentials. Web Help Desk (WHD) is an IT help desk soft ... Read more
-
Dark Reading
Why End of Life for Applications Is the Beginning of Life for Hackers
Source: Artur Szczybylo via Alamy Stock PhotoCOMMENTARYWe all get older. In IT, we face problems around aging software and keeping up with patches and updates. But there is another set of dates we sho ... Read more
-
security.nl
VS meldt actief misbruik van kwetsbaarheden in Dahua ip-camera's
Aanvallers maken actief misbruik van twee kwetsbaarheden in ip-camera's van fabrikant Dahua, waardoor een ongeauthenticeerde aanvaller op afstand toegang tot de apparaten kan krijgen, zo waarschuwt he ... Read more
-
InfoSec Write-ups
Zyxel’s Achilles Heel: Uncovering CVE-2022–30525 — The Remote Code Execution That Will Make You…
A Fun Dive into Command Injection Vulnerabilities, Shodan Hunts, and Why You Shouldn’t Underestimate Your Router’s SecurityIntroduction: When Routers Go RogueLet’s paint a picture: you’re sitting at h ... Read more